What is the severity of USN-3929-1?

The severity of USN-3929-1 is classified as high due to the potential for denial of service caused by malformed network packets.

How do I fix USN-3929-1?

To fix USN-3929-1, update the affected packages to version 2.5.2.26540.ds4-9ubuntu1.1 or later.

Which software is affected by USN-3929-1?

USN-3929-1 affects Firebird database software versions prior to 2.5.2.26540.ds4-9ubuntu1.1 on Ubuntu 14.04.

Can USN-3929-1 be exploited remotely?

Yes, USN-3929-1 can be exploited remotely by attackers sending specially crafted network packets.

What are the implications of USN-3929-1?

The implications of USN-3929-1 include potential service outages or crashes due to denial of service vulnerabilities.

Vulnerability/
USN-3929-1

2/4/2019

USN-3929-1: Firebird vulnerabilities

First published: Tue Apr 02 2019(Updated: )

It was discovered that Firebird incorrectly handled certain malformed packets. A remote attacker could possibly use this issue with a specially crafted network packet to cause Firebird to crash, resulting in a denial of service. (CVE-2014-9323) It was discovered that Firebird incorrectly handled certain UDF libraries. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2017-6369)

Affected Software	Affected Version	How to fix
All of
ubuntu/firebird2.5-classic	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/firebird2.5-classic-common	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/firebird2.5-server-common	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/firebird2.5-super	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/firebird2.5-superclassic	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/libfbclient2	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/libfbembed2.5	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/libib-util	<2.5.2.26540.ds4-9ubuntu1.1	2.5.2.26540.ds4-9ubuntu1.1
Ubuntu OpenSSH Client	=14.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the severity of USN-3929-1?
The severity of USN-3929-1 is classified as high due to the potential for denial of service caused by malformed network packets.
How do I fix USN-3929-1?
To fix USN-3929-1, update the affected packages to version 2.5.2.26540.ds4-9ubuntu1.1 or later.
Which software is affected by USN-3929-1?
USN-3929-1 affects Firebird database software versions prior to 2.5.2.26540.ds4-9ubuntu1.1 on Ubuntu 14.04.
Can USN-3929-1 be exploited remotely?
Yes, USN-3929-1 can be exploited remotely by attackers sending specially crafted network packets.
What are the implications of USN-3929-1?
The implications of USN-3929-1 include potential service outages or crashes due to denial of service vulnerabilities.

agent/severity
agent/last-modified-date
agent/type
agent/first-publish-date
agent/title
agent/references
agent/description
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/usn
source/Ubuntu
anchor-related/USN-4822-1
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu openssh client
version/ubuntu openssh client/14.04